Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/WL3yj9F5EC-LYoSwjsy29igBJEc.roa
File: WL3yj9F5EC-LYoSwjsy29igBJEc.roa (raw, json)
Hash identifier: 0LJi+OF7BjH+1HVPut0hQmzHVdemfjE/ARNgLqPZKxI=
Subject key identifier: 58:BD:F2:8F:D1:79:10:2F:8B:62:84:B0:8E:CC:B6:F6:28:01:24:47
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 019D6D9479E55A57CCD335CA28F7604787BD
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/WL3yj9F5EC-LYoSwjsy29igBJEc.roa
Signing time: Wed 08 Apr 2026 14:52:20 +0000
ROA not before: Wed 08 Apr 2026 14:52:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 5650
IP address blocks: 194.38.48.0/24 maxlen: 24
194.38.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:6d:94:79:e5:5a:57:cc:d3:35:ca:28:f7:60:47:87:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Apr 8 14:52:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=58bdf28fd179102f8b6284b08eccb6f628012447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1e:e3:8d:be:34:d6:3e:0c:5e:55:bf:af:0f:
b3:46:79:f1:b2:97:02:73:9c:e4:76:36:1e:41:48:
ed:ca:78:ae:3a:af:c4:44:d2:bf:2d:35:0e:f1:8f:
4e:12:fa:31:b9:d7:52:50:cb:9f:7f:f8:22:aa:96:
f3:0b:9c:66:ec:28:1f:55:df:0e:e6:0c:8e:6c:01:
95:78:64:6c:70:c2:dd:c1:7e:eb:dd:2f:4d:5d:20:
bf:ab:f3:77:e2:47:f4:12:61:1e:ed:8a:9d:79:bf:
d5:80:5e:fd:d5:e4:83:44:4e:14:19:93:dc:11:12:
e3:b2:5d:4c:c9:68:c7:25:84:3e:e0:fa:b2:72:6f:
f4:19:48:50:af:2d:3a:e2:00:72:b5:2d:17:66:d3:
e5:72:52:63:4f:3d:73:55:17:f2:5c:bf:b3:e6:5b:
42:48:36:ac:25:5c:4c:e0:96:05:d1:e6:1a:cf:5d:
2f:45:2d:c8:ed:44:06:6f:f7:c1:c6:2c:5e:01:38:
3d:ab:81:e5:44:ec:94:b0:a3:89:66:3b:96:0c:1c:
9a:09:0f:de:35:24:d3:b5:74:50:aa:26:b6:8b:36:
cc:59:24:8c:2a:22:44:99:dd:55:0d:6e:81:15:f0:
7f:38:ab:8a:01:8d:a5:2c:64:ba:ea:c4:43:a4:df:
51:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BD:F2:8F:D1:79:10:2F:8B:62:84:B0:8E:CC:B6:F6:28:01:24:47
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/WL3yj9F5EC-LYoSwjsy29igBJEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.38.48.0/24
194.38.50.0/24
Signature Algorithm: sha256WithRSAEncryption
70:89:0c:1f:16:95:d6:2e:23:25:f3:6a:51:52:e9:f2:a7:83:
cc:15:f1:d8:bb:3b:72:a5:23:b1:77:b6:a9:cc:58:ab:8e:f9:
e0:34:cd:08:42:99:fe:84:7c:d3:19:e9:e5:42:f2:8a:14:61:
60:f7:27:b3:10:46:5a:96:41:26:fd:73:d3:6a:8d:02:39:4c:
89:06:dd:c1:5a:ed:f0:a2:be:b2:33:b5:fb:c5:ba:bf:01:ef:
16:5b:7a:63:bc:9e:d1:24:d4:ff:64:9e:71:8b:90:b1:2d:29:
29:01:12:5d:1f:16:76:af:7f:2d:34:14:54:40:2c:ac:af:06:
92:f5:3f:21:01:60:90:5b:61:3b:75:06:3b:c5:94:be:a9:6e:
7e:9a:00:4e:32:ae:37:31:75:da:12:24:6a:af:db:31:40:d1:
3f:1b:61:02:34:d4:4c:ce:c6:c7:96:93:08:58:2f:d1:3e:52:
24:1a:b5:8e:d8:00:d0:25:dd:6d:9c:13:0f:2a:b6:94:9c:cf:
a7:5a:31:80:e4:5e:91:c9:15:62:fa:b1:9e:73:71:42:ef:1c:
2a:b4:2c:57:9d:a8:3b:f9:e4:79:89:ec:43:ca:8d:a7:ef:98:
5c:61:00:60:31:15:93:83:19:ff:26:dc:53:31:d3:f9:27:38:
8e:db:b5:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:28:51 2026 by rpki-client